Information Security Analyst

Description

Responsibilities Coordinate and execute internal audits (SOC1 & PCI) to assess information technology, information security and operational controls, and compliance with company policies and procedures.
Perform recurring security and compliance monitoring tasks including access reviews, log reviews, and network vulnerability and penetration test reviews.
Conduct and drive compliance for the system access certification process across legacy and current applications and systems portfolio.
Ability to identify and mitigate vulnerabilities within the network, system, and application environment.
Troubleshooting of issues and testing across multiple platforms and applications.
Triage and drive vulnerability issues to a thorough, immediate, and effective conclusion.
Manage endpoint protection and intrusion detection system tools and policies.
Review security requirements at relevant phases for both technical and operational perspective for new and existing projects.
Analyze, review, customize and recommend security architectures for internal projects at Radial.
Identifies, implements, and monitors best practices for information security architecture.
Coordinate and execute clientissued information security assessments, track remediation items, and communicate directly with client representatives.
Assist with the documentation and review of policies, procedures, and standards.
Conduct information security assessments of vendors and subcontractors, present results to senior management, and track issue remediation.
Promote and instill security awareness by providing orientation, training programs, and ongoing communication.
Performs basic risk assessments and security reviews to ensure compliance with internal policies, standards and regulatory requirements.
Interfaces with user community and assists with IT risk and compliance needs.
Ensures that the user community understands and adheres to necessary procedures to maintain compliance.
Performs root cause analysis of security issues and determines the best course of action to remedy the problem.
Determines if an event needs to be escalated, and resolves or escalates as appropriate.
Recommends course of action for low to moderately complex situations.
Provides input and recommendations to management to change current procedures or implement new procedures.
May provide budgetary recommendations for future projects/security tools/applications.
Performs other duties as required.